This local chapter uses a community building website known as MeetUp, if you are unable to access it from your work computer as a result of filtering of social sites we recommend that you view it on your smart phone or via your personal computer.

−

+

−

+

−

Please let us know your thoughts on future events and topics!

+

−

+

−

Please consider becoming a Pittsburgh OWASP Chapter member so we can have more events next year.

The topic for our next meeting will be: Cybersecurity – "Current Trends and Threats'''

+

−

+

−

Please join us for our October meeting of the Pittsburgh OWASP chapter. Reserve your seat today for October 2nd from 1:00 to 2:00.

+

−

+

−

We are excited to announce Bobby Dominguez as our guest speaker for our October meeting.

+

−

Bobby is an accomplished pioneer in e-commerce and a security expert. In 1989, Dominguez was a founder and designer of the Internet’s first online social network, Matchmaker.com. Lycos acquired Matchmaker.com in 2000, where he created and led the security department. He repeated his success at integrating security & risk management into top-level business initiatives at Home Shopping Network and PSCU Financial Services. Under his leadership, the Sykes Enterprises' security team was selected as one of the 5 “Best Security Teams in the US” by SC Magazine in 2008. Bobby was also selected as one of the top 5 “CSOs of Year” in both 2009 & 2010 by SC Magazine. And in 2012 he was a finalist for (ISC)² Americas Information Security Leadership Awards.

+

−

+

−

Location: 525 William Penn Place, Pittsburgh, Pa

+

−

+

−

Note: When entering the building please register with security and then make your way to the 11th floor we will be in room 1120 and 1122. Time 1:00PM to 2:00PM.

+

−

+

−

Register Now: We have limited seating of 50 people. Please reserve your seat early by e-mail to Lee Cambria at lee.cambria@gmail.com or lee.cambria@owasp.org

+

−

This is going to be a fun filled networking and learning experience with giveaways of OWASP pens, stickers and bags

The topic for our next meeting will be: '''Threat Modeling - The First Step in Secure Application Development'''

+

−

+

−

Application security issues continue to be a growing concern for businesses large and small. In fact, many people would be surprised to find that some of the most popular mobile apps downloaded are vulnerable to issues found in the OWASP Mobile Top 10 list of common vulnerabilities. To address these issues security needs to be integrated into the software development lifecycle (SDLC) used by the developers. When developing an application in a secure manner threat modeling is an important but often forgotten first step.

+

−

+

−

This 1-hour talk will start out as an overview of where to integrate security into the SDLC process. The remainder of the talk will focus on the threat modeling portion of the SecSDLC. During this stage the OWASP Mobile Threat Model will be introduced. To provide real world examples vulnerabilities found in many of the top 25 downloaded apps found in the Apple App Store and Google Play will be covered.

+

−

+

−

''About the Presenter:'' '''Matt Neely''' is the Director of Research, Innovation and Strategic Initiatives at SecureState, a security management consulting firm. At SecureState Matt leads the Research and Innovation team which focuses on imagining, researching and developing methodologies and tools that will solve industry related issues. In addition to Matt’s technical background, his strong understanding of business processes and organizational structure allow him to meet the security needs of the business world. Matt is a regular speaker at various business and security user groups and conferences including Black Hat, Defcon, THOTCON and ShmooCon. Matt recently published the book Radio Reconnaissance in Penetration Testing.

+

−

+

−

As a reminder, the meeting will be held '''Wednesday, May 15th from 11 AM to 2 PM''' courtesy of Summa at '''925 Liberty Avenue in Pittsburgh, PA 15222'''. A Pizza lunch will be served, so please '''RSVP as soon as possible'''!

+

−

+

−

Thank you,

+

−

+

−

Lee Cambria

+

−

+

−

+

−

==='''Spring Meeting & Membership Drive'''===

+

−

+

−

Hope you’re all surviving winter! We’re currently working toward scheduling our next meeting for the last week of March, to usher in Spring! We’ll send out another email and update the website when we have a more solid date, time, and location lined up.

+

−

+

−

Also, we are keen to expand the Pittsburgh chapter’s membership. If you’ve been attending the meetings and would like to see more meetings, more content (more food?), we’d urge you to consider joining at either the personal level or consider the value of having your business becoming a Corporate member.

+

−

+

−

A one year Individual Membership is just $50, and helps fund the chapter.

+

−

+

−

A one year Corporate Supporter Membership is $5000.00, and organizations that wish to support OWASP can make a 100% tax deductible donation. These funds are used to enable the OWASP Foundation mission supporting Projects enabling & Grants and receiving discounts at OWASP Conferences for employees to attend and if exhibiting.

We hope you’ll join us, and help keep the chapter growing so that we can provide content. Also, if there are specific topics you’d like for March’s chapter meeting (or speakers, for that matter!) please let us know.

OWASP Pittsburgh

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

This local chapter uses a community building website known as MeetUp, if you are unable to access it from your work computer as a result of filtering of social sites we recommend that you view it on your smart phone or via your personal computer.